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This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 



1. (original) A method for controlling access to a server device by 
at least one client device that is operatively coupled to the server device through at 
least one interconnecting network, the method comprising: 

causing a user-side portion of a network server logic within the server 
device to selectively specify at least one network from which the user-side portion 
would accept client device information; and 

causing a kernel-side portion of the network server logic to accept the client 
device information only if the client device information has been provided via the 
specified network. 

2« (original) The method as recited in Claim 1 , further comprising: 
if the client device information has not been provided via the specified 
network, causing the kernel-side portion to reject the client device information and 
notify the client device in a manner that identifies the rejection. 

3. (original) The method as recited in Claim 2, wherein the 

kernel-side portion notifies the client device using at least one message selected 
from a group of messages comprising a TCP reset message and an ICMP 
destination unreachable message, as applicable. 
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A. (original) The method as recited in Claim 1, further comprising: 
providing a communication socket for use by the kernel-side portion; and 
causing the kernel-side portion to compare client device information 
received on the communication socket to the specified network. 

5. (original) The method as recited in Claim 1, wherein causing the 
user-side portion to selectively specify at least one network from which the user- 
side portion would accept the client device information, further includes causing 
the user-side portion to selectively specify a plurality of networks from which the 
user-side portion would accept the client device information; and 

wherein causing the kernel-side portion to accept the client device 
information only if the client device information has been provided via the 
specified network, further includes causing the kernel-side portion to accept the 
client device information only if the client device information has been provided 



15 via at least one of the specified plurality of networks. 

16 

17 6, (original) The method as recited in Claim 1, wherein causing the 

is user-side portion to selectively specify the at least one network from which the 

19 user-side portion would accept the client device information further includes 

20 having the user-side portion specify at least one local network interface. 

21 

22 7. (original) The method as recited in Claim 1, wherein causing the 

23 user-side portion to selectively specify the at least one network from which the 

24 user-side portion would accept the client device information further includes 

25 having the user-side portion specify at least one IP address. 
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8. (original) The method as recited in Claim 1 , wherein the network 
server logic is operatively configured to support at least one client-server based 
process selected from a group of processes comprising a file-sharing 
communication process, a TCP-based communication process, a UDP-based 
communication process, a HTTP-based communication process, a digital media 
based communication process, a DNS-based communication process, and a 
9 1 database related communication process. 
10 

n| 9. (original) The method as recited in Claim 1, wherein the user- 

12 side portion includes an application-programming interface (API) operatively 
n configured to allow an application to specify the at least one network from which 
H the user-side portion would accept the client device information, 
is 

16 I 10. (original) The method as recited in Claim 9, wherein the API is 

17 further operatively configured to allow the application to specify a listing of 
is networks from which the user-side portion would accept the client device 
!0 I information. 

20 

21 I 11. (original) The method as recited in Claim 10, wherein the API is 

22 further operatively configured to allow the application to selectively modify the 

23 listing of networks from which the user-side portion would accept the client device 

24 | information. 

23 
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12. (original) The method as recited in Claim 1, wherein the kernel- 
side portion includes a TCP/IP driver. 



13. (original) A computer-readable medium having computer- 
executable instructions for performing steps comprising: 

causing a user-side portion of a network server logic within a server device 
to selectively specify at least one network from which the user-side portion would 
8 accept client device information; and 

causing a kernel-side portion of the network server logic to accept the 
client device information only if the client device information has been provided 



1 1 via the specified network. 



14. (original) The computer-readable medium as recited in Claim 13, 

14 further comprising computer-executable instructions for: 

15 if the client device information has not been provided via the specified 
is network, causing the kernel-side portion to reject the client device information and 
n notify the client device in a manner that identifies the rejection. 

18 

19 1 5. (original) The computer-readable medium as recited in Claim 14, 

20 wherein the kernel-side portion notifies the client device using at least one 

21 message selected from a group of messages comprising a TCP reset message and 

22 an ICMP destination unreachable message, as applicable. 

23 
24 
25 
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16. (original) The computer-readable medium as recited in Claim 1 3, 
further comprising computer-executable instructions for: 

providing a communication socket for use by the kernel-side portion; and 
causing the kernel-side portion to compare client device information 
received on the communication socket to the specified network. 

17. (original) The computer-readable medium as recited in Claim 13 > 
wherein causing the user-side portion to selectively specify at least one network 
from which the user-side portion would accept the client device information, 
further includes causing the user-side portion to selectively specify a plurality of 
networks from which the user-side portion would accept the client device 
information; and 

wherein causing the kernel-side portion to accept the client device 
information only if the client device information has been provided via the 
specified network, further includes causing the kernel-side portion to accept the 
client device information only if the client device information has been provided 
via at least one of the specified plurality of networks. 

18. (original) The computer-readable medium as recited in Claim 13 t 
wherein causing the user-side portion to selectively specify the at least one 
network from which the user-side portion would accept the client device 
information further includes having the user-side portion specify at least one local 
network interface. 
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19, (original) The computer-readable medium as recited in Claim 13, 
wherein causing the user-side portion to selectively specify the at least one 
network from which the user-side portion would accept the client device 
information further includes having the user-side portion specify at least one IP 
address. 



20. (original) The computer-readable medium as recited in Claim 1 3, 
wherein the network server logic is operatively configured to support at least one 
client-server based process selected from a group of processes comprising a file- 
io sharing communication process, a TCP-based communication process, a UDP- 
based communication process, a HTTP-based communication process, a digital 
a media based communication process, a DNS-based communication process, and a 
] 3 database related communication process. 

14 

15 21. (original) The computer-readable medium as recited in Claim 13, 

16 wherein the user-side portion includes an application-programming interface (API) 
n operatively configured to allow an application to specify the at least one network 
is from which the user-side portion would accept the client device information. 

19 

20 22. (original) The computer-readable medium as recited in Claim 21, 

21 wherein the API is further operatively configured to allow the application to 

22 specify a listing of networks from which the user-side portion would accept the 

23 client device information. 

24 
15 
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23, (original) The computer-readable medium as recited in Claim 22, 
wherein the API is further operatively configured to allow the application to 
selectively modify the listing of networks from which the user-side portion would 
accept the client device information. 

24. (original) The computer-readable medium as recited in Claim 13* 
wherein the kernel-side portion includes a TCP/IP driver. 



25. (original) A method for establishing per-socket interface listings, 
io the method comprising the steps of: 

a) issuing, by a user-side application, at least one network identifier 
from which the user-side application would accept client device information; 

b) receiving, by a user-side portion of a network server process, the at 

14 least one network identifier; 

15 c) issuing, by the user-side portion, the at least one network identifier; 

and 

d) receiving, by a kernel-side portion of a network server process, the at 
is least one network identifier. 

19 
20 
21 
22 
23 
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! 26. (original) An apparatus comprising: 

2 memory; and 

3 network server logic, operatively coupled to the memory and configurable 

4 to support at least one client-server communication session, the network server 

5 logic having: 

6 a user-side portion that is configured to selectively specify at least one 

7 network from which the user-side portion would accept client device information, 
s and 

9 a kernel-side portion that is configured to accept the client device 

\ io information only if the client device information has been provided via the 

1 1 specified network. 

12 

13 27. (original) The apparatus as recited in Claim 26, wherein if the 

14 client device information has not been provided via the specified network, the 
is kernel-side portion is further configured to reject the client device information and 
i6 notify the client device in a manner that identifies the rejection. 

17 

is 28 The apparatus as recited in Claim 27, wherein the kernel-side portion 

19 is configured to notify the client device using at least one message selected from a 

20 group of messages comprising a TCP reset message and an ICMP destination 

21 unreachable message, as applicable. 
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29. (original) The apparatus as recited in Claim 26> further 
comprising: 

a communication socket for use by the kernel-side portion during the 
communications session, and wherein the kernel-side portion is further configured 
to compare client device information received on the communication socket to the 
6 specified network, 

7 

8 30. (original) The apparatus as recited in Claim 26, wherein is 

further configured to selectively specify a plurality of networks from which the 
user-side portion would accept the client device information; and 

wherein the kernel-side portion is further configured to accept the client 
device information only if the client device information has been provided via at 



13 least one of the specified plurality of networks. 



14 



15 3L (original) The apparatus as recited in Claim 26, wherein the user- 

side portion is further configured to specify at least one local network interface. 



18 32. (original) The apparatus as recited in Claim 26, wherein the user- 
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side portion is further configured to specify at least one IP address. 
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33. (original) The apparatus as recited in Claim 26, wherein the 
2 communication session is further configured to support at least one communication 
process selected from a group of communication processes comprising a file- 
sharing communication process, a TCP-based communication process, a UDP- 
based communication process, a HTTP-based communication process, a digital 
$ media based communication process, a DNS-based communication process, and a 
database related communication process. 



7 



9 34. (original) The apparatus as recited in Claim 26, wherein the user- 

10 side portion includes: 
n an application-programming interface (API) operativeiy configurable to 

12 allow an application to specify the at least one network from which the user-side 

13 portion would accept the client device information. 

14 

i 5 I 35. (original) The apparatus as recited in Claim 34, wherein the API 

is is further operativeiy configurable to allow the application to specify a listing of 

n networks from which the user-side portion would accept the client device 

is I information. 

19 

20 I 36, (original) The apparatus as recited in Claim 35, wherein the API 

21 is further operativeiy configurable to allow the application to selectively modify 

22 the listing of networks from which the user-side portion would accept the client 
23 1 device information. 

24 
25 
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37. (original) The apparatus as recited in Claim 26, wherein the 
kernel-side portion includes a TCP/IP driven 
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